CNNVD-202509-3910 Information
CNNVD ID
CNNVD-202509-3910
Related CVE
- CNNVD Published: 2025-09-25
Description (Chinese)
Flock Safety The Bravo Compute Box是美国Flock Safety公司的一个边缘计算设备。 Flock Safety The Bravo Compute Box BRAVO_00.00_local_20241017版本存在安全漏洞,该漏洞源于接受默认Thundercomm TurboX 6490 Firehose加载器,可能导致物理访问攻击者刷入任意固件、转储分区和绕过引导加载程序及操作系统安全控制。
Description (English)
Flock Safety The Bravo Company Box is a peripheral computing device for the United States company Flock Safety. The Flock Safety The Bravo Company Box BraVO 0.00 local 20241017 contains a security loophole, which stems from the acceptance of the default Thundercomm TurboX 6490 Firehose loader, which could lead to physical access to the attackers to remove any of the solids, re-storage partitions and bypassing the guided loading procedures and operating system security controls.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Flock Safety
Published
2025-09-25
Last Modified
2026-02-24
References
https://gainsec.com/2025/09/19/root-from-the-coop-device-3-root-shell-on-flock-safetys-bravo-compute-box/ https://gainsec.com/wp-content/uploads/2025/09/Root-from-the-Coop-Device-3_-Root-Shell-on-Flock-Safetys-Bravo-Compute-Box-GainSec.pdf https://www.flocksafety.com/products https://www.flocksafety.com/products/license-plate-readers
Share on: